Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/e5069b-1cad-45a4-a619-c24ff682f7ad/1/MrwJcD31ICWCCv5DqH8e9PvFDus.roa
File: MrwJcD31ICWCCv5DqH8e9PvFDus.roa (raw, json)
Hash identifier: 0RV8bggKmw3dIKPxmh6rMZZYMa4xPS1XfiO4s+aXfEo=
Subject key identifier: 32:BC:09:70:3D:F5:20:25:82:0A:FE:43:A8:7F:1E:F4:FB:C5:0E:EB
Certificate issuer: /CN=79a3b2c3622df9e87982ea8350978a6c9875a7c8
Certificate serial: 0194E64AF0F4A595B0CCEEF9929419153E83
Authority key identifier: 79:A3:B2:C3:62:2D:F9:E8:79:82:EA:83:50:97:8A:6C:98:75:A7:C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eaOyw2It-eh5guqDUJeKbJh1p8g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/e5069b-1cad-45a4-a619-c24ff682f7ad/1/MrwJcD31ICWCCv5DqH8e9PvFDus.roa
Signing time: Sat 08 Feb 2025 16:00:58 +0000
ROA not before: Sat 08 Feb 2025 16:00:58 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215567
IP address blocks: 194.187.210.0/24 maxlen: 24
194.187.211.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 11 Feb 2025 10:59:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:e6:4a:f0:f4:a5:95:b0:cc:ee:f9:92:94:19:15:3e:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79a3b2c3622df9e87982ea8350978a6c9875a7c8
Validity
Not Before: Feb 8 16:00:58 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=32bc09703df52025820afe43a87f1ef4fbc50eeb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:f0:33:45:89:d2:c7:88:3f:87:ce:1c:3f:0f:
ba:9f:f6:13:41:14:cf:7e:2d:5e:7f:1c:e4:af:7e:
e1:f0:f2:75:1e:db:0e:98:41:2a:4a:58:a2:89:e0:
d6:0a:e0:82:71:35:4b:6b:48:6f:5d:36:80:66:37:
26:05:f8:8c:0a:01:b9:ec:09:fc:ae:b8:d9:14:be:
20:73:3c:6a:bc:64:33:98:f9:ab:c5:60:17:54:b9:
a5:9f:dc:2c:bd:41:8a:0e:e4:5d:b1:6c:e0:4f:43:
42:1a:7a:f7:39:d7:dc:bd:53:e6:c1:1e:e7:08:c3:
65:d7:e9:10:b9:fe:ac:dd:0d:cd:95:27:4e:a9:22:
41:f4:52:8b:4c:61:cb:ad:ae:f7:bf:23:9e:12:50:
df:c0:18:fb:83:d5:f7:73:f4:e2:04:d7:b5:08:ea:
a5:93:ea:5f:10:38:15:cf:e8:9a:b3:57:ff:fb:d9:
8b:f5:94:01:4d:e1:ad:ae:2c:3e:3b:28:cb:ba:15:
12:d4:9d:db:b3:7a:d7:11:03:3f:7c:e9:60:e4:27:
43:85:68:c8:01:62:57:5d:b2:c2:68:5d:b2:7d:2c:
b1:55:ba:a4:fd:2e:e7:0f:90:17:08:ca:9e:c4:ff:
b4:6d:89:2a:8c:37:18:3b:1f:9f:e7:09:78:ee:ac:
f2:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:BC:09:70:3D:F5:20:25:82:0A:FE:43:A8:7F:1E:F4:FB:C5:0E:EB
X509v3 Authority Key Identifier:
keyid:79:A3:B2:C3:62:2D:F9:E8:79:82:EA:83:50:97:8A:6C:98:75:A7:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eaOyw2It-eh5guqDUJeKbJh1p8g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/e5069b-1cad-45a4-a619-c24ff682f7ad/1/MrwJcD31ICWCCv5DqH8e9PvFDus.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/e5069b-1cad-45a4-a619-c24ff682f7ad/1/eaOyw2It-eh5guqDUJeKbJh1p8g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.187.210.0/23
Signature Algorithm: sha256WithRSAEncryption
4e:cc:cc:de:0d:b9:29:8f:2b:a4:1c:bb:23:b8:d5:ff:8c:87:
96:a0:58:69:c7:27:8f:ba:39:79:1e:ea:a6:e1:4c:d8:9a:e4:
e5:88:c2:8b:8b:80:81:5f:2d:45:75:4c:44:79:08:9a:2f:63:
9d:98:7a:22:fe:23:95:83:ce:e8:19:4d:1a:8a:11:a8:55:1b:
63:0d:c0:c1:29:66:97:45:6b:c7:d1:d1:9d:a2:5a:7a:21:be:
88:23:12:ba:cf:32:59:f7:10:ca:d8:71:fb:35:02:cb:84:a5:
ba:da:ec:5e:24:3b:20:f1:a4:f2:d6:56:00:bc:2b:60:f8:5f:
40:e7:8e:58:e3:af:ae:b2:13:6c:68:dd:0e:52:ca:d8:b8:46:
11:01:03:f7:ce:9a:1b:97:dd:09:be:c6:b3:7b:2a:24:54:41:
21:24:f2:83:80:38:6a:5a:8e:73:c6:08:4f:51:a4:d9:7e:d8:
c6:ce:15:86:a4:1c:6b:97:34:8b:3d:7f:2c:8b:bb:45:fe:a0:
c3:8c:d7:a2:c3:99:1e:b3:04:5d:ed:82:1c:e2:bf:23:9c:46:
6c:3a:6d:5c:e4:d7:f6:ca:72:ab:72:70:2a:ab:21:65:c0:6d:
e7:7a:a6:e3:73:68:8c:5b:7f:a6:85:a6:a1:16:6d:df:7f:f6:
e9:50:2f:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 3 12:34:13 2025 by rpki-client